Overview

overview

7

Static

static

5

JaffaCakes...4b.exe

windows7-x64

7

JaffaCakes...4b.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_6ab57a4e59f02814d4e73902f602e34b

  • Size

    192KB

  • Sample

    250116-evpypa1nd1

  • MD5

    6ab57a4e59f02814d4e73902f602e34b

  • SHA1

    5513155505a2e8b3c5b8be23d6948ad43cbc6e93

  • SHA256

    15250d7d23df56d04fdb385772a61192e1f656e82cf6b55805fd5603f0b08195

  • SHA512

    5810ae4a991e7d804c0c0abe8ef163fdedf043d39d57c03588b2b831803d92684a2e102b59628a5fe41b55010f8fdc6dfad6cf3935c92885c3b9e07bd6f9e5b9

  • SSDEEP

    3072:y+Rp2kaUbKeR42j48r2H5FrgHn2zInPV+rSrphgt0L:tP9achi2j48KvkH2zIt+qhi0L

Score
7/10
collectiondiscoveryspywarestealerupx

Malware Config

Targets

    • Target

      JaffaCakes118_6ab57a4e59f02814d4e73902f602e34b

    • Size

      192KB

    • MD5

      6ab57a4e59f02814d4e73902f602e34b

    • SHA1

      5513155505a2e8b3c5b8be23d6948ad43cbc6e93

    • SHA256

      15250d7d23df56d04fdb385772a61192e1f656e82cf6b55805fd5603f0b08195

    • SHA512

      5810ae4a991e7d804c0c0abe8ef163fdedf043d39d57c03588b2b831803d92684a2e102b59628a5fe41b55010f8fdc6dfad6cf3935c92885c3b9e07bd6f9e5b9

    • SSDEEP

      3072:y+Rp2kaUbKeR42j48r2H5FrgHn2zInPV+rSrphgt0L:tP9achi2j48KvkH2zIt+qhi0L

    Score
    7/10
    collectiondiscoveryspywarestealerupx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Accesses Microsoft Outlook profiles

      collection

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks